
Attributes
There is one more hierarchy used in AD. Associated with each object class is a set of “attributes” used to store specific information about the entity that is being represented. For example, associated with the User object class is an attribute type named SAM ACCOUNT NAME and others such as FIRST NAME, SURNAME, PASSWORD, etc. The suite of Dell Remote Console Switches uses the SAM ACCOUNT NAME and PASSWORD attributes to authenticate a user (the formal AD names for these two attributes are sAMAccountName and unicodePWD, respectively).
Schema Extensions
AD is packaged with many object classes, including default containers for Computer and User objects as well as classes for OU containers and classes to represent computer and user entities. AD can be extended to include new object classes such as those provided by Dell to simplify the administration of access controls; such extensions are usually referred to as “schema extensions” and are at the heart of the Dell Extended Schema feature described in this document. These schema extensions provide customized object classes to represent Dell Remote Console Switches, access control information, and a type of container used to associate specific access control information with specific instances of Dell Remote Console Switches and Users. It is important to note that each attribute type and object class used in AD must have a globally unique identifier, known as an Object Identifier (OID). These unique identifiers are ultimately managed by internationally recognized authorities. For AD, the OID space is managed secondarily by Microsoft. Dell has obtained OIDs for the custom object classes and attribute types used in the Dell Extended Schema feature. The following is a summary of the OIDs Dell obtained:
Dell extension is: dell
Dell base OID is: 1.2.840.113556.1.8000.1280
RCS LinkID range is: 12070 to 12079
The Active Directory OID database maintained by Microsoft can be viewed at http://msdn.microsoft.com/certification/ADAcctInfo.asp by entering the extension: Dell.
179
LDAP Feature for the Remote Console Switch